Jailbreak iOS 10 / 10.2 / 10.1.1 On iPhone 7, Plus, 6s, iPad Pro Using Yalu [Updated]

Jailbreak update: Yalu iOS 10, iOS 10.2, iOS 10.1.1 jailbreak is out. It works on iPhone 7, 7 Plus on 10.1.1, and iPhone 6s, 6s Plus, iPhone SE, iPad Pro and all other 64-bit devices on iOS 10.2 firmware. 32-bit iOS devices such as the iPhone 5, 5c, 4s, 32-bit iPad and iPod touch devices are not supported at all.

To get started with jailbreaking your compatible device on iOS 10.1.1 or iOS 10.2, depending on the kind of iPhone or iPad you have, follow our detailed guides below. We will keep updating this with more guides, tips, fixes etc so keep checking back regularly for updates.

iOS-10-jailbreak

Here’s a look back at how the iOS 10 jailbreak came into being. If you are an avid jailbreaking fan who keeps up to date with the comings and goings in the jailbreak community, then you will more than likely already be aware that the last version of iOS (before iOS 10) to have a publicly available jailbreak solution released for it was iOS 9.3.3. Owners of Apple’s 64-bit devices running iOS 9.3.3 were, and still are, able to liberate their iPhones and iPads using the semi-untethered Pangu solution. Of course, as we also know, Apple patched the vulnerabilities used in that jailbreak solution with the launch of iOS 9.3.4 and subsequent releases.

Since the release of iOS 9.3.3 Pangu jailbreak back in July this year, there has been no jailbreak available to public. Of course, there has been a lot of firmware updates released by Apple between then and now, and there has been a lot of jailbreak teases here are there by a lot of hackers.

After Apple unveiled and released the first iOS 10 beta at WWDC back in June, well known developer and hacker iH8sn0w was first to demo a jailbreak for it. Later, even Pangu Team joined in the fun by demoing there own version of iOS 10 jailbreak at MOSEC 2016. Luca Tedesco showed of a jailbreak on iOS 10 beta 8 as well. However all these were demoed on beta versions of iOS 10, and it would be reasonable to believe that Apple may have patched up all those vulnerabilities in the final release that these parties were exploiting in the beta releases.

Once final version of iOS 10 was out in the form of iOS 10.0.1 in September, Luca was first to demo a jailbreak for it. He was also the first to jailbreak iPhone 7 running on iOS 10.0.1. But since Luca here was using exploits meant for his private research purposes only, these jailbreaks never saw the light of day for public.

After Apple dropped iOS 10.0.2, followed by 10.0.3, as quick bug fix updates, Zerodium made things interesting by offering $1.5 million bounty for a remote iOS 10 jailbreak.

Towards end of October, Apple released final version of iOS 10.1, bringing some new features, more bug fixes, as well as security patches. A developer who goes by the name of ijapija00 managed to successfully jailbreak iOS 10.1 on iPhone 7. He claimed his jailbreak worked on iOS 10.1.1 as well.

iOS 10.1 was quickly followed by iOS 10.1.1 update. Luca was first to show off iOS 10.1.1 jailbreak on an iPhone 7 using one of his private exploits.

After rigorous testing, in mid December, Apple dropped iOS 10.2 final version to the public. While iOS 10.2 brought many new features, it also patched a ton of bugs, killing a lot of the exploits which were used by hackers to demo their jailbreaks on initial versions of iOS 10.

Apple’s security document for iOS 10.2 confirmed that the company also patched a Project Zero exploit found by Google team in iOS 10.1.1. Once this was confirmed, one of the hackers from Google’s Chromium team made the exploit public as they no longer needed it. Luca Todesco then took it to himself and packed it into a full iOS 10.1.1 jailbreak solution for public and called it Mach_Portal + Yalu jailbreak. This jailbreak was made available towards the very end of year 2016 and worked even on latest iPhone 7 and iPhone 7 Plus.

Cydia 10.2

In early 2017, Luca and Marco Grassi updated Yalu with another exploit, adding support for iOS 10.2. This updated tool is called yalu102 and can be used now to jailbreak all non-iPhone 7/7 Plus 64-bit devices on iOS 10.2. Like Mach_Portal + Yalu jailbreak for iOS 10.1.1, the yalu102 10.1.1-10.2 jailbreak is semi-untethered in nature.

While Apple has now released iOS 10.2.1 to public, with iOS 10.3 available as a beta, but since iOS 10.2 is still being signed, those wanting to jailbreak their compatible devices can do so by downgrading to 10.2 while Apple is still signing the firmware. Our guide on how to downgrade can be found here: How To Downgrade iOS 10.2.1 To iOS 10.2, And Why You May Want To.

For tutorials on how to jailbreak iOS 10.2-10.1.1, follow the links at the top of this post.

Update x1: Apple has stopped signing iOS 10.2 firmware, making iOS 10.2.1 to 10.2 downgrade almost impossible.

You may also like to check out:

You can follow us on Twitter, add us to your circle on Google+ or like our Facebook page to keep yourself updated on all the latest from Microsoft, Google, Apple and the Web.